Threat Hunting Intelligence
BlackFog’s unique Threat Hunting module provides detailed insights into each identified threat, enabling organizations to stay ahead of cybercriminals.
BlackFog’s unique Threat Hunting module provides detailed insights into each identified threat, enabling organizations to stay ahead of cybercriminals.
In 2023 and 2024, several high-profile cyberattacks targeted managed service providers (MSPs), disrupting services for their clients. Learn about the top 5 MSP attacks during this period, including incidents at CTS, Tietoevry, Lumen Technologies, HTC Global Services, and Südwestfalen IT.
Why is the healthcare industry targeted so frequently? In 2023, there were 136 publicized attacks, a 134% increase from the year before.
Wizard Spider is a notorious Russian cybercrime group which is part of a larger cyber-cartel known as the Ransom Cartel or Maze Cartel.
Citrix Bleed is being leveraged by LockBit ransomware affiliates to compromise organizations using CVE-2023-4966.
Explores the Badbox and Peachpit malware on Android devices and home networks which granted illegitimate users backdoor access.
An exponential rise in data exfiltration is changing the ransomware landscape afflicting over 91% of all attacks.
The 2023 ransomware attack report summarizes the major changes we saw in ransomware trends and tactics by geography, sector and variant.
BlackFog requires connections to a few domains to keep its rules updated and resolve the geo location of IP addresses. In order to operate correctly it is important to allow BlackFog to communicate to the following domains.
Dual ransomware attacks are the latest trend by threat actors whereby they send a secondary strain after the initial compromise has been successful.